%term

Customer Office Hours: CI/CD Best Practices

Dec 9, 2022 By Snyk In Snyk

Learn tips and tricks on how to implement, troubleshoot and scale deployments. For example, should you scan in the CICD or in SCM? What implementation methods should you use - plugin, npm, binary…? We will cover this and more. Host: Sebastian Roth, Senior Solutions Engineer Seb brings his expertise as a Principal Software Engineer & Team Lead for over 17 years into the DevSecOps community, where he now focuses on process improvements and shares best-practices to improve security posture.

View Video

Snyk

Read more about Customer Office Hours: CI/CD Best Practices

[NEW] Kubescape now integrates with GitHub Actions

Dec 8, 2022 By ARMO In ARMO

We are happy to announce that Kubescape now integrates with GitHub Actions. This allows users to identify issues as early and as clearly as possible, without ever leaving GitHub. Read all about it 👇

Read Post

ARMO

Read more about [NEW] Kubescape now integrates with GitHub Actions

Renovate Reaches 10K!

Dec 8, 2022 By Carol Hildebrand In Mend

First started as an open-source project in 2018, Mend Renovate automates open source dependency updates in software projects. Renovate has enabled a diverse user base across github.com and gitlab.com, reducing risk by mitigating security vulnerabilities and saving developers’ time. Renovate is now endorsed by OpenSSF and Google as the industry standard tool for dependency updates.

Read Post

Mend

Read more about Renovate Reaches 10K!

How Integrating with GCP Benefits Kubernetes Data Protection and Data Migration for GKE

Dec 8, 2022 By Ayushi Raj In CloudCasa

TFiR has produced its brand-new video show called Let’s See. This is the first time that TFiR has come up with a demo show where we will get to see how some of the technologies and products work.

Read Post

CloudCasa

Read more about How Integrating with GCP Benefits Kubernetes Data Protection and Data Migration for GKE

Getting Started using Maven and Bytesafe

Dec 8, 2022 By Bytesafe In Bytesafe

This video shows you how to use Maven and Bytesafe to install secure packages.

View Video

Bytesafe

Read more about Getting Started using Maven and Bytesafe

Risks Faced by Cloud-Native Apps and How to Assess Them

Dec 7, 2022 By Omer Dahan In Mend

Modern organizations are adopting a cloud-native approach to their application development. While this approach provides many benefits, it also makes organizations face several challenges, including the challenge of securing the application with a completely different approach. In this blog, we will discuss how software changes and how organizations should think about securing it.

Read Post

Mend

Read more about Risks Faced by Cloud-Native Apps and How to Assess Them

How to Sign Kubernetes using Sigstore

Dec 7, 2022 By Snyk In Snyk

In this livestream we are joined by Adolfo Veytia, Staff Software Engineer at ChainGuard and Tech Lead on the Kubernetes SIG-Release team, as we talk about they were able to tackle signing all of the Kubernetes v1.24 image artifact using Sigstore. We then demonstrate signing an image and vulnerability scan result attestations with Sigstore's cosign utility. Didn't catch the live stream? Ask all of your Snyk questions and we’ll do our very best to answer them in the comment section.

View Video

Snyk

Read more about How to Sign Kubernetes using Sigstore

Kubernetes Security: CSPM's Blind Spot

Dec 6, 2022 By Amir Kaushanskyt In ARMO

This article focuses on a critical missing component of Cloud Security Posture Management (CSPM): visibility into Kubernetes. Scroll down to read all you need to know about it.

Read Post

ARMO

Read more about Kubernetes Security: CSPM's Blind Spot

Highlights from AWS re:Invent 2022

Dec 6, 2022 By Jason Yee In Datadog

Just like shopping on Black Friday, AWS re:Invent has become a post-Thanksgiving tradition for some of us at Datadog. We were excited to join tens of thousands of fellow AWS users and partners for this annual gathering that features new product announcements, technical sessions, networking, and fun. This year, we saw three themes emerge from the conference announcements and sessions.

Read Post